ScanMalware.com

Security Scan Report: onesto.de

Redirected to:
https://public.onesto.de/en/
Site favicon
Submitted: May 4, 2026, 8:24:23 PMCompleted: May 4, 2026, 8:25:36 PMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 2 countries across 4 domains to perform 34 HTTP transactions. The main domain is public.onesto.de.

Submitted URL: https://onesto.de

Effective URL: https://public.onesto.de/en/Redirected

The Cisco Umbrella rank of the primary domain is #503,857 of the top 1 million websites

AI Security Verdict

Moderate Risk

Confidence: 78%

5
Risk Score

The site is newly registered, self‑branded, and heavily obfuscated but lacks credential collection or known malicious indicators, resulting in a moderate risk rating.

Risk Factors
Unknown domain age with brand claim
Low Cisco Umbrella ranking for claimed brand
High JavaScript obfuscation score
Safety Factors
No forms collecting credentials or payments
No malicious IoC matches or YARA detections
Self‑branding only (no impersonation of known brand)
No network IDS alerts
Domain age information unavailable

Details

Page Title

Booking online – but not at all costs - onesto | Geschäftsreise-Management

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(64%)

Domain Information

You're looking at domain 'onesto.de' on the German country-code top-level domain (.de). The second-level label 'onesto' is 6 characters long containing 3 vowels alongside three consonants. Breaking it apart gives two words: ones, to. Median word length is three characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://onesto.de

Page Load Overview

1.89s
Total Load Time
41
HTTP Requests
4
Domains
2.1 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-GB
Text Length:2,364 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software64% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

technology software
64%
corporate business
60%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1188.217.144.168Munich, Bavaria, Germany
AS8767M-net Telekommunikations GmbH
10104.17.208.5United States
AS13335Cloudflare, Inc.
10151.101.130.137United States
AS54113Fastly, Inc.
1091.24.30.207Aichach, Bavaria, Germany
AS3320Deutsche Telekom AG
414--

Detected Technologies5

JQueryv3.6.1
100%
HSTS
40%
WordPress
30%
jsDelivr
20%
jQuery CDN
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1AFD2A430D0AE1D3F163F53D915603398E0DF5D38CE3A5AA6B2FB55684794CA128239AE

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:M8aaAk3z9YRIoXyXI5yR7ss0KrwAVfEKrMVUEKrwOwtOD0Krw2PrZrIrCrtrOrw1:MQP9EI8Py

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:29522:sFI6AIN3EAUCimWviEwjNApAsCOmSKGE5JcgAZCgCIgwW0EACEAEGCAdoGYETFOJBEpGDWgAd+kkcAyG7YACBgRDShCZRiiS

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffffffff000000ff
Perceptual Hash:b6fd9c08c726a70c
Difference Hash:29362c48d1a9a10d
Wavelet Hash:ffffff00000000ff
Color Hash:#87c5b8

Other Hashes

Crop Resistant:29362c48d1a9a10d

Scan History

Scan history not available

Unable to load historical scan data